npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

depskills

v0.0.2

Published

Scans installed dependencies for SKILL.md files and copies them into .agent/skills/ for AI assistants to discover

Downloads

192

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

giuseppegurgonegiuseppegurgone

Keywords

aiskillsagentllmclaudedependencies

Readme

depskills

Scans installed dependencies for SKILL.md files and copies them into .agent/skills/ so AI assistants can discover them automatically.

The idea is that skills, like docs, should ship with the package that owns them and be vendored in your repo so changes are reviewable via git.

Usage

npm install depskills --save-dev

Add to your package.json:

{
  "scripts": {
    "postinstall": "depskills"
  }
}

On each install, depskills syncs skill folders from your dependencies into .agent/skills/. Commit .agent/skills/ to your repo — the diff is how you review changes.

Security

Skill files are generated from content shipped inside your npm dependencies. A malicious package could include prompt injection attempts in its SKILL.md or accompanying files.

Before committing changes to .agent/skills/, review the diff carefully. Check that skill names, descriptions, and file contents look legitimate and do not contain instructions disguised as skill metadata.

depskills prints a notice when new skills are added. It is silent otherwise — use git diff to review any content changes.

How it works

Packages can ship a SKILL.md file inside a named subdirectory (e.g. skills/my-skill/SKILL.md) with a name and description in the frontmatter. When you run depskills, it walks your dependencies and devDependencies, finds every skill folder, and copies each one into .agent/skills/<skill-name>/.

This follows the .agent/skills/ convention for agent skill discovery — skills committed to your repo are picked up automatically by compatible AI assistants without any manual configuration.

Requirements:

  • SKILL.md must live in a subdirectory of the package, not at the package root
  • The directory name must match the name field in the frontmatter
  • If two dependencies ship a skill with the same directory name, the second one is skipped with a warning

Compatibility

depskills assumes a flat, hoisted node_modules layout as produced by npm and yarn. It does not currently support pnpm's non-hoisted layout or monorepo setups where dependencies are hoisted to a workspace root outside the project directory.

LICENSE

MIT